ghost Shapeblue Security Advisory for CVE-2015-0235, aka the Ghost vulnerability

Overview A vulnerability has been recently disclosed by Qualys that could result in a remote attacker being able to execute malicious instructions on vulnerable systems. The vulnerability affects Linux based operating systems. This is better known as GHOST ‘glibc’ vulnerability (CVE-2015-0235): https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0235 What is ShapeBlue Doing ShapeBlue has analysed the impact of this issue on Apache CloudStack (ACS).  The [...]

READ MORE

LDAP-002 Using CloudStack 4.3 with Microsoft Active Directory

CloudStack 4.3 provided further enhancements to the LDAP integration, and in this article we will look at how you configure CloudStack to authenticate against a Microsoft Active Directory Server. Enable AD Integration First step is to tell CloudStack about your Active Directory Servers (yes we can now have more than one) Go to Global Settings [...]

READ MORE

heartbleed How to Mitigate OpenSSL HeartBleed Vulnerability in Apache CloudStack

UPDATE: 09-Apr-2014 – The proper upgrade command is “apt-get install openssl libssl1.0.0″. If you’ve just updated openssl, please go back and update libssl as well. UPDATE: 10-Apr-2014 – Added detailed verification steps / Apache CloudStack 4.0 – 4.1 are not vulnerable, they use older Debian/openssl. Thanks to all involved for helping to put together and update [...]

READ MORE